From 98500df9d258742d041d2f7bd28e0af31bb6d1a5 Mon Sep 17 00:00:00 2001
From: Thedro Neely <thedroneely@gmail.com>
Date: Sat, 18 Jan 2020 03:24:39 -0500
Subject: roles/nginx/main: Generate keys

---
 roles/nginx/main.yml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/roles/nginx/main.yml b/roles/nginx/main.yml
index 234c437..0d39faa 100644
--- a/roles/nginx/main.yml
+++ b/roles/nginx/main.yml
@@ -46,6 +46,7 @@
           - geoip-dev
           - perl-dev
           - tar
+          - openssl
 
     - name: Installing the required brotli dependencies
       apk:
@@ -186,9 +187,25 @@
         && mkdir -p /etc/nginx/conf.d
         && mkdir -p /etc/nginx/sites-available
         && mkdir -p /etc/nginx/sites-enabled
+        && rm -rf /etc/nginx/*.default
+        && rm -rf /etc/nginx/html
         && strip /usr/sbin/nginx*
         && strip /usr/lib/nginx/modules/*.so
       args:
        chdir: /opt/nginx/nginx-{{ nginx_version }}
       register: output
     - debug: var=output
+
+    - name: Generating self signed certificate
+      shell: >
+        openssl req -x509 -newkey rsa:4096 -nodes -keyout nginx.key
+        -out nginx.crt -days 1095 -sha256 -subj '/CN=localhost'
+      args:
+       chdir: /etc/nginx
+       creates: nginx.crt
+
+    - name: Generating Diffie Hellman group
+      shell: openssl dhparam -out dhparam.pem 2048
+      args:
+       chdir: /etc/nginx
+       creates: dhparam.pem
-- 
cgit v1.2.3